Arabian Post

SAP developers face npm supply shock

Malicious code inserted into four SAP-related npm packages exposed developer workstations and automated build systems to credential theft, marking a sharp escalation in attacks against open-source ...
InfoWorld

13 new critical holes in JavaScript sandbox allow execution of arbitrary code

Thirteen critical vulnerabilities have been found in the vm2 JavaScript sandbox package that could allow an attacker’s code ...

Critical vm2 sandbox bug lets attackers execute code on hosts

A critical vulnerability in the popular Node.js sandboxing library vm2 allows escaping the sandbox and executing arbitrary ...
The Hacker News

vm2 Node.js Library Vulnerabilities Enable Sandbox Escape and Arbitrary Code Execution

CVE-2026-44009 (CVSS score: 9.8) - A vulnerability that allows sandbox escape via a null proto exception and permits an ...
Visual Studio Magazine

Special Embrace? VS Code Adapts to Claude Code's Ecosystem

Reflecting a broader trend of Microsoft embracing Claude AI, recent VS Code updates show the company accommodating Claude Code beyond model selection, with support for Claude-specific instruction ...
Visual Studio Magazine

AI Subagents 'Coming Soon' to Visual Studio Copilot

Microsoft's Mads Kristensen said subagents are 'coming soon' to Copilot in Visual Studio, while VS Code already documents subagent support across context isolation, custom agents, parallel execution ...
XDA Developers on MSN

4 VS Code extensions I can't live without as a Claude Code user

I'm not a developer (yet), but my VS Code setup says otherwise.

Online archives of over 20 years of tech reporting | The Register

Dive into The Register's online archive of incisive tech news reporting, features, and analysis dating back to 1998 ...